Securing the University through Policy and Compliance
The Information Security Office (ISO) is responsible for developing and maintaining the policies, guidelines, and procedures necessary to protect Carnegie Mellon’s information systems and resources across the university. In addition to establishing these internal standards, the ISO coordinates compliance with state, federal, and international laws and regulations. By partnering with the Office of General Counsel and impacted business units, the ISO ensures the implementation of appropriate controls to maintain compliance with legal requirements and safeguard the university’s digital assets.